Implement the post-return attribute (#4297)

This commit implements the `post-return` feature of the canonical ABI in the component model. This attribute is an optionally-specified function which is to be executed after the return value has been processed by the caller to optionally clean-up the return value. This enables, for example, returning an allocated string and the host then knows how to clean it up to prevent memory leaks in the original module. The API exposed in this PR changes the prior `TypedFunc::call` API in behavior but not in its signature. Previously the `TypedFunc::call` method would set the `may_enter` flag on the way out, but now that operation is deferred until a new `TypedFunc::post_return` method is called. This means that once a method on an instance is invoked then nothing else can be done on the instance until the `post_return` method is called. Note that the method must be called irrespective of whether the `post-return` canonical ABI option was specified or not. Internally wasm will be invoked if necessary. This is a pretty wonky and unergonomic API to work with. For now I couldn't think of a better alternative that improved on the ergonomics. In the theory that the raw Wasmtime bindings for a component may not be used all that heavily (instead `wit-bindgen` would largely be used) I'm hoping that this isn't too much of an issue in the future. cc #4185
2022-06-23 14:36:21 -05:00
parent fa36e86f2c
commit 3339dd1f01
12 changed files with 787 additions and 112 deletions
--- a/crates/environ/src/component/info.rs
+++ b/crates/environ/src/component/info.rs
@@ -129,6 +129,9 @@ pub struct Component {
    /// `VMComponentContext`.
    pub num_runtime_reallocs: u32,

+    /// Same as `num_runtime_reallocs`, but for post-return functions.
+    pub num_runtime_post_returns: u32,
+
    /// The number of lowered host functions (maximum `LoweredIndex`) needed to
    /// instantiate this component.
    pub num_lowerings: u32,
@@ -180,6 +183,10 @@ pub enum GlobalInitializer {
    /// used as a `realloc` function.
    ExtractRealloc(ExtractRealloc),

+    /// Same as `ExtractMemory`, except it's extracting a function pointer to be
+    /// used as a `post-return` function.
+    ExtractPostReturn(ExtractPostReturn),
+
    /// The `module` specified is saved into the runtime state at the next
    /// `RuntimeModuleIndex`, referred to later by `Export` definitions.
    SaveStaticModule(StaticModuleIndex),
@@ -207,6 +214,15 @@ pub struct ExtractRealloc {
    pub def: CoreDef,
 }

+/// Same as `ExtractMemory` but for the `post-return` canonical option.
+#[derive(Debug, Serialize, Deserialize)]
+pub struct ExtractPostReturn {
+    /// The index of the post-return being defined.
+    pub index: RuntimePostReturnIndex,
+    /// Where this post-return is being extracted from.
+    pub def: CoreDef,
+}
+
 /// Different methods of instantiating a core wasm module.
 #[derive(Debug, Serialize, Deserialize)]
 pub enum InstantiateModule {
@@ -361,7 +377,9 @@ pub struct CanonicalOptions {

    /// The realloc function used by these options, if specified.
    pub realloc: Option<RuntimeReallocIndex>,
-    // TODO: need to represent post-return here as well
+
+    /// The post-return function used by these options, if specified.
+    pub post_return: Option<RuntimePostReturnIndex>,
 }

 impl Default for CanonicalOptions {
@@ -370,6 +388,7 @@ impl Default for CanonicalOptions {
            string_encoding: StringEncoding::Utf8,
            memory: None,
            realloc: None,
+            post_return: None,
        }
    }
 }
--- a/crates/environ/src/component/translate/inline.rs
+++ b/crates/environ/src/component/translate/inline.rs
@@ -62,6 +62,7 @@ pub(super) fn run(
        result: Component::default(),
        import_path_interner: Default::default(),
        runtime_realloc_interner: Default::default(),
+        runtime_post_return_interner: Default::default(),
        runtime_memory_interner: Default::default(),
    };

@@ -182,6 +183,7 @@ struct Inliner<'a> {
    // runtime instead of multiple times.
    import_path_interner: HashMap<ImportPath<'a>, RuntimeImportIndex>,
    runtime_realloc_interner: HashMap<CoreDef, RuntimeReallocIndex>,
+    runtime_post_return_interner: HashMap<CoreDef, RuntimePostReturnIndex>,
    runtime_memory_interner: HashMap<CoreExport<MemoryIndex>, RuntimeMemoryIndex>,
 }

@@ -851,13 +853,29 @@ impl<'a> Inliner<'a> {
                    index
                })
        });
-        if options.post_return.is_some() {
-            unimplemented!("post-return handling");
-        }
+        let post_return = options.post_return.map(|i| {
+            let def = frame.funcs[i].clone();
+            *self
+                .runtime_post_return_interner
+                .entry(def.clone())
+                .or_insert_with(|| {
+                    let index =
+                        RuntimePostReturnIndex::from_u32(self.result.num_runtime_post_returns);
+                    self.result.num_runtime_post_returns += 1;
+                    self.result
+                        .initializers
+                        .push(GlobalInitializer::ExtractPostReturn(ExtractPostReturn {
+                            index,
+                            def,
+                        }));
+                    index
+                })
+        });
        CanonicalOptions {
            string_encoding: options.string_encoding,
            memory,
            realloc,
+            post_return,
        }
    }
 }
--- a/crates/environ/src/component/vmcomponent_offsets.rs
+++ b/crates/environ/src/component/vmcomponent_offsets.rs
@@ -2,16 +2,18 @@
 //
 // struct VMComponentContext {
 //      magic: u32,
-//      may_enter: u8,
-//      may_leave: u8,
+//      flags: u8,
 //      store: *mut dyn Store,
 //      lowering_anyfuncs: [VMCallerCheckedAnyfunc; component.num_lowerings],
 //      lowerings: [VMLowering; component.num_lowerings],
 //      memories: [*mut VMMemoryDefinition; component.num_memories],
 //      reallocs: [*mut VMCallerCheckedAnyfunc; component.num_reallocs],
+//      post_returns: [*mut VMCallerCheckedAnyfunc; component.num_post_returns],
 // }

-use crate::component::{Component, LoweredIndex, RuntimeMemoryIndex, RuntimeReallocIndex};
+use crate::component::{
+    Component, LoweredIndex, RuntimeMemoryIndex, RuntimePostReturnIndex, RuntimeReallocIndex,
+};
 use crate::PtrSize;

 /// Equivalent of `VMCONTEXT_MAGIC` except for components.
@@ -20,6 +22,18 @@ use crate::PtrSize;
 /// double-checked on `VMComponentContext::from_opaque`.
 pub const VMCOMPONENT_MAGIC: u32 = u32::from_le_bytes(*b"comp");

+/// Flag for the `VMComponentContext::flags` field which corresponds to the
+/// canonical ABI flag `may_leave`
+pub const VMCOMPONENT_FLAG_MAY_LEAVE: u8 = 1 << 0;
+
+/// Flag for the `VMComponentContext::flags` field which corresponds to the
+/// canonical ABI flag `may_enter`
+pub const VMCOMPONENT_FLAG_MAY_ENTER: u8 = 1 << 1;
+
+/// Flag for the `VMComponentContext::flags` field which is set whenever a
+/// function is called to indicate that `post_return` must be called next.
+pub const VMCOMPONENT_FLAG_NEEDS_POST_RETURN: u8 = 1 << 2;
+
 /// Runtime offsets within a `VMComponentContext` for a specific component.
 #[derive(Debug, Clone, Copy)]
 pub struct VMComponentOffsets<P> {
@@ -32,16 +46,18 @@ pub struct VMComponentOffsets<P> {
    pub num_runtime_memories: u32,
    /// The number of reallocs which are recorded in this component for options.
    pub num_runtime_reallocs: u32,
+    /// The number of post-returns which are recorded in this component for options.
+    pub num_runtime_post_returns: u32,

    // precalculated offsets of various member fields
    magic: u32,
-    may_enter: u32,
-    may_leave: u32,
+    flags: u32,
    store: u32,
    lowering_anyfuncs: u32,
    lowerings: u32,
    memories: u32,
    reallocs: u32,
+    post_returns: u32,
    size: u32,
 }

@@ -60,14 +76,15 @@ impl<P: PtrSize> VMComponentOffsets<P> {
            num_lowerings: component.num_lowerings.try_into().unwrap(),
            num_runtime_memories: component.num_runtime_memories.try_into().unwrap(),
            num_runtime_reallocs: component.num_runtime_reallocs.try_into().unwrap(),
+            num_runtime_post_returns: component.num_runtime_post_returns.try_into().unwrap(),
            magic: 0,
-            may_enter: 0,
-            may_leave: 0,
+            flags: 0,
            store: 0,
            lowering_anyfuncs: 0,
            lowerings: 0,
            memories: 0,
            reallocs: 0,
+            post_returns: 0,
            size: 0,
        };

@@ -97,14 +114,14 @@ impl<P: PtrSize> VMComponentOffsets<P> {

        fields! {
            size(magic) = 4u32,
-            size(may_enter) = 1u32,
-            size(may_leave) = 1u32,
+            size(flags) = 1u32,
            align(u32::from(ret.ptr.size())),
            size(store) = cmul(2, ret.ptr.size()),
            size(lowering_anyfuncs) = cmul(ret.num_lowerings, ret.ptr.size_of_vmcaller_checked_anyfunc()),
            size(lowerings) = cmul(ret.num_lowerings, ret.ptr.size() * 2),
            size(memories) = cmul(ret.num_runtime_memories, ret.ptr.size()),
            size(reallocs) = cmul(ret.num_runtime_reallocs, ret.ptr.size()),
+            size(post_returns) = cmul(ret.num_runtime_post_returns, ret.ptr.size()),
        }

        ret.size = next_field_offset;
@@ -129,16 +146,10 @@ impl<P: PtrSize> VMComponentOffsets<P> {
        self.magic
    }

-    /// The offset of the `may_leave` field.
+    /// The offset of the `flags` field.
    #[inline]
-    pub fn may_leave(&self) -> u32 {
-        self.may_leave
-    }
-
-    /// The offset of the `may_enter` field.
-    #[inline]
-    pub fn may_enter(&self) -> u32 {
-        self.may_enter
+    pub fn flags(&self) -> u32 {
+        self.flags
    }

    /// The offset of the `store` field.
@@ -232,6 +243,20 @@ impl<P: PtrSize> VMComponentOffsets<P> {
        self.runtime_reallocs() + index.as_u32() * u32::from(self.ptr.size())
    }

+    /// The offset of the base of the `runtime_post_returns` field
+    #[inline]
+    pub fn runtime_post_returns(&self) -> u32 {
+        self.post_returns
+    }
+
+    /// The offset of the `*mut VMCallerCheckedAnyfunc` for the runtime index
+    /// provided.
+    #[inline]
+    pub fn runtime_post_return(&self, index: RuntimePostReturnIndex) -> u32 {
+        assert!(index.as_u32() < self.num_runtime_post_returns);
+        self.runtime_post_returns() + index.as_u32() * u32::from(self.ptr.size())
+    }
+
    /// Return the size of the `VMComponentContext` allocation.
    #[inline]
    pub fn size_of_vmctx(&self) -> u32 {